Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/3_xmC1ho9_8ZqNCvSg_4Ci-eALc.roa
File: 3_xmC1ho9_8ZqNCvSg_4Ci-eALc.roa (raw, json)
Hash identifier: F7LfywH9mxXY2KxRJjRgggVLiwyV5wwnZqXcnTIZ+/Y=
Subject key identifier: DF:FC:66:0B:58:68:F7:FF:19:A8:D0:AF:4A:0F:F8:0A:2F:9E:00:B7
Certificate issuer: /CN=b2ccda1c5487cb938d57ea61cc2d62d31070db51
Certificate serial: 019421445B9309EA390A6AD8F822BE15F549
Authority key identifier: B2:CC:DA:1C:54:87:CB:93:8D:57:EA:61:CC:2D:62:D3:10:70:DB:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/3_xmC1ho9_8ZqNCvSg_4Ci-eALc.roa
Signing time: Wed 01 Jan 2025 09:48:35 +0000
ROA not before: Wed 01 Jan 2025 09:48:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204186
IP address blocks: 2001:67c:a38::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:5b:93:09:ea:39:0a:6a:d8:f8:22:be:15:f5:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2ccda1c5487cb938d57ea61cc2d62d31070db51
Validity
Not Before: Jan 1 09:48:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dffc660b5868f7ff19a8d0af4a0ff80a2f9e00b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:09:15:a8:8c:45:93:90:fe:98:db:64:12:56:
09:bd:17:a2:ad:10:42:4c:40:4d:08:cc:e1:d6:73:
b2:a0:df:7e:c6:1b:a8:4a:8c:d2:bb:9d:7d:28:31:
02:73:32:ea:71:03:97:e7:94:2a:f8:b1:93:26:e7:
5a:6a:cf:72:2f:4c:0f:7c:af:ea:a2:74:3c:a1:00:
b9:ff:60:95:f2:66:b3:b2:c6:af:17:57:a5:c3:19:
38:51:e8:93:ed:ab:73:11:62:95:15:b1:6a:ce:85:
38:70:46:53:6f:b7:18:53:60:4d:d2:50:74:49:61:
28:e4:b0:af:f0:15:57:cb:73:05:13:a2:a3:ae:a6:
d1:2f:fe:0f:fd:05:3f:d9:35:8b:55:1a:d7:30:0d:
e3:22:04:34:52:03:79:dc:50:35:8f:03:04:78:78:
47:5e:6c:6f:65:91:d0:7d:5b:4f:12:d3:32:c3:19:
6a:74:01:08:37:22:5a:24:71:6c:1f:08:5b:d8:19:
50:cb:66:34:e9:1e:8f:3b:03:b8:02:05:c3:48:0e:
c4:ad:c1:e2:77:07:0f:3d:33:b9:55:1b:2a:1d:f4:
b8:03:3a:9d:f2:4d:ba:94:b2:c8:fc:0e:78:31:f6:
8b:ea:f0:8b:dd:96:6c:00:f7:cd:fe:e3:dd:7b:1d:
f0:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:FC:66:0B:58:68:F7:FF:19:A8:D0:AF:4A:0F:F8:0A:2F:9E:00:B7
X509v3 Authority Key Identifier:
keyid:B2:CC:DA:1C:54:87:CB:93:8D:57:EA:61:CC:2D:62:D3:10:70:DB:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sszaHFSHy5ONV-phzC1i0xBw21E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/3_xmC1ho9_8ZqNCvSg_4Ci-eALc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e6b77f-40e6-4c93-ac32-3db961703ea9/1/sszaHFSHy5ONV-phzC1i0xBw21E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:a38::/48
Signature Algorithm: sha256WithRSAEncryption
ad:ff:3b:94:73:37:d9:ce:27:23:f7:35:af:dd:09:da:2c:6b:
d6:94:d0:90:48:14:6c:bc:6d:bc:5d:89:81:d5:67:6e:48:67:
65:d0:12:d7:0c:d5:28:98:b8:b7:eb:ee:a9:df:bc:b2:62:34:
52:6d:cb:ea:4a:b4:6b:70:e4:16:89:35:fd:be:e9:32:65:ec:
60:a3:53:d7:23:b5:dc:3f:ab:58:ab:e2:db:94:25:a5:e5:4a:
6b:e4:2e:37:6c:4a:2b:9d:7d:6a:45:d4:fa:75:3a:ac:b4:9a:
9e:f1:ad:15:07:6a:da:d7:77:84:e2:c6:5e:f9:66:c1:69:e0:
10:b1:da:76:4b:ee:2d:76:c9:aa:26:40:64:ab:73:67:df:a3:
a2:8e:c4:7c:87:7a:7c:32:f1:16:7c:a1:3a:4d:bc:95:ed:91:
f1:31:86:ee:26:aa:53:06:9d:4e:cd:6f:66:72:50:a9:ed:63:
55:29:02:91:68:b2:5e:f9:44:b1:a8:fb:de:b9:c7:83:f4:8d:
0a:86:17:c2:19:a9:3e:3e:ab:d9:04:d8:e9:f0:2a:98:7a:ba:
c4:20:8c:64:cf:7c:75:bd:aa:ee:b8:01:b6:91:25:7b:87:79:
02:56:f3:f3:a4:ed:d7:60:7c:e5:d2:62:88:57:3d:4c:75:e6:
f2:5b:3e:33
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZQhRFuTCeo5CmrY+CK+FfVJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyY2NkYTFjNTQ4N2NiOTM4ZDU3ZWE2MWNjMmQ2MmQzMTA3
MGRiNTEwHhcNMjUwMTAxMDk0ODM1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZmZjNjYwYjU4NjhmN2ZmMTlhOGQwYWY0YTBmZjgwYTJmOWUwMGI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxQkVqIxFk5D+mNtkElYJvReirRBC
TEBNCMzh1nOyoN9+xhuoSozSu519KDECczLqcQOX55Qq+LGTJudaas9yL0wPfK/q
onQ8oQC5/2CV8mazssavF1elwxk4UeiT7atzEWKVFbFqzoU4cEZTb7cYU2BN0lB0
SWEo5LCv8BVXy3MFE6KjrqbRL/4P/QU/2TWLVRrXMA3jIgQ0UgN53FA1jwMEeHhH
XmxvZZHQfVtPEtMywxlqdAEINyJaJHFsHwhb2BlQy2Y06R6POwO4AgXDSA7ErcHi
dwcPPTO5VRsqHfS4Azqd8k26lLLI/A54MfaL6vCL3ZZsAPfN/uPdex3wlwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFN/8ZgtYaPf/GajQr0oP+AovngC3MB8GA1UdIwQY
MBaAFLLM2hxUh8uTjVfqYcwtYtMQcNtRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3N6YUhGU0h5NU9OVi1waHpDMWkweEJ3MjFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9lNmI3N2YtNDBlNi00YzkzLWFjMzIt
M2RiOTYxNzAzZWE5LzEvM194bUMxaG85XzhacU5DdlNnXzRDaS1lQUxjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9lNmI3N2YtNDBlNi00YzkzLWFjMzItM2RiOTYxNzAzZWE5
LzEvc3N6YUhGU0h5NU9OVi1waHpDMWkweEJ3MjFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAo4
MA0GCSqGSIb3DQEBCwUAA4IBAQCt/zuUczfZzicj9zWv3QnaLGvWlNCQSBRsvG28
XYmB1WduSGdl0BLXDNUomLi36+6p37yyYjRSbcvqSrRrcOQWiTX9vukyZexgo1PX
I7XcP6tYq+LblCWl5Upr5C43bEornX1qRdT6dTqstJqe8a0VB2ra13eE4sZe+WbB
aeAQsdp2S+4tdsmqJkBkq3Nn36OijsR8h3p8MvEWfKE6TbyV7ZHxMYbuJqpTBp1O
zW9mclCp7WNVKQKRaLJe+USxqPveuceD9I0KhhfCGak+PqvZBNjp8CqYerrEIIxk
z3x1varuuAG2kSV7h3kCVvPzpO3XYHzl0mKIVz1MdebyWz4z
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:50 2025 by rpki-client on console.sobornost.net